Age | Commit message (Collapse) | Author | Files | Lines |
|
a users logon hours restrictions.
Jeremy.
(This used to be commit 887aa22dc90dd8653a6c9eedf91ce76830d93de6)
|
|
logon hours attributes in an LDAP database.
Jeremy.
(This used to be commit dac72638fb3a05e805136698e0ad0612620ac8af)
|
|
logon hours attributes in an LDAP database.
Jeremy.
(This used to be commit ac0fdf9503b34a70eaae5e7cf0764dbaec0263ee)
|
|
(This used to be commit 7e44193be103fad273796218c8f5e5f9a1657c3c)
|
|
Jeremy.
(This used to be commit f454821ff5545a34704b149514da9064f73ca3ad)
|
|
enforce logon hours. ldap fixes to follow.
Jeremy.
(This used to be commit 9ce273ed662bd34987eaeedeeeb7cb1c99cd50a4)
|
|
contacting an ADS server fails. This allows net ads lookup to work with clapd (very useful for testing).
from aliguori@us.ibm.com
(This used to be commit edb4e940b45cbb06a93004b15fc45a7a45a42498)
|
|
Jeremy.
(This used to be commit a1bb6fbbe4d1618b5e02a3e7ee456247364bac66)
|
|
Guenther
(This used to be commit 153c813464eb54a06bf01146a0eb3d2c908f76bc)
|
|
Guenther
(This used to be commit 3677c6a8f67628d5bea0764f84e624730d57b423)
|
|
a system
call, and gcc -Wall complains about a shadowed definition.
Volker
(This used to be commit 9a2fd67037769b5cbb10edd024f6d98c610bf875)
|
|
guenther
(This used to be commit 925e28d0cbd9667bceb0762ef1e429735250c209)
|
|
* add IA64 to the architecture table of printer-drivers
* add new "net"-subcommands:
net rpc printer migrate {drivers|printers|forms|security|settings|all}
[printer]
net rpc share migrate {shares|files|all} [share]
this is the first part of the migration suite. this will will (once
feature-complete) allow to do 1:1 server-cloning in the best possible way by
making heavy use of samba's rpc_client-functions. all migration-steps
are implemented as rpc/smb-client-calls; net communicates via rpc/smb
with two servers at the same time (a remote, source server and a
destination server that currently defaults to the local smbd). this
allows e. g. printer-driver migration including driverfiles, recursive
mirroring of file-shares including file-acls, etc. almost any migration
step can be called with a migrate-subcommand to provide more flexibility
during a migration process (at the cost of quite some redundancy :) ).
"net rpc printer migrate settings" is still in a bad condition (many
open questions that hopefully can be adressed soon).
"net rpc share migrate security" as an isolated call to just migrate
share-ACLs will be added later.
Before playing with it, make sure to use a test-server. Migration is a
serious business and this tool-set can perfectly overwrite your
existing file/print-shares.
* along with the migration functions had to make I the following
changes:
- implement setprinter level 3 client-side
- implement net_add_share level 502 client-side
- allow security descriptor to be set in setprinterdata level 2
serverside
guenther
(This used to be commit 8f1716a29b7e85baf738bc14df7dabf03762f723)
|
|
<patrakov@ums.usu.ru>. Main change, hardcode replacement char
to '_' as I really don't want a new parameter.
Jeremy.
(This used to be commit db3dde026b84aa28c2d7a32249488f203e362497)
|
|
Jeremy.
(This used to be commit 31505acf033c7d76592bb5b4ef80b29a00658c49)
|
|
(This used to be commit 6778db61106be3992ded66b3aa81c98179a6169c)
|
|
supported by the underlying OS.
Jeremy.
(This used to be commit 1b0c70cf97aa45093fe5ef866a351b47ef1a5879)
|
|
sambaIdmapEntry
(This used to be commit 6e4c58b26d19f56162de961ae8338071aeeedde7)
|
|
consists of a 16 byte salt, followed by the 16 byte MD5 hash of
the concatination of the salt plus the NThash of the historical
password. Allows these to be exposed in LDAP without security issues.
Jeremy.
(This used to be commit 82e4036aaa2d283534a5bd8149857320fcf0d0dc)
|
|
Volker
(This used to be commit d5060c30e38b46b322615f0e0b465fbf73ed5245)
|
|
> This patch is (probably) needed for all systems that don't have a
> C99/UNIX98 compliant vsnprintf by default. The builtin sm_*printf
> were no being called, causing things like talloc_init to fail, with
> predictable results.
The should fix 6 (solaris/hpux/irix) builds on the build farm.
Vance
(This used to be commit 1a33999cf073ee18f846678357832ec7866bb467)
|
|
(This used to be commit e9263a5204c42e8f3f1079cd535ce6fc091f3d6a)
|
|
(This used to be commit 2bd28007159a3ce4a1b8737218e7b75bc2286682)
|
|
winbindd_fill_pwent consistently.
Jeremy.
(This used to be commit 8d355b9b9ddd6edf15c70977f5a719b549a56378)
|
|
(Botched LANMAN2 session setup code)
Andrew Bartlett
(This used to be commit 3baa4ef6c58eb13bec1a8ddb1561a504f4a16107)
|
|
save the password as it is being changed into the password
history list.
Jeremy.
(This used to be commit 4fd619d7e16b5f759e6dc8360ad192457b3c90b9)
|
|
against broken filesystems which return zero blocksize.
Jeremy.
(This used to be commit 23d157a0bea16366f0361ab68193b479ed844291)
|
|
identical symbols in the global namespace when loading libnss_wins.so.
Bugzilla #1360.
(This used to be commit 2063b8d9bcf0b2ad9f09d71b5c74ad3db070c6a3)
|
|
(This used to be commit 2d68fdf06b3b027227ab77372b001b13fd2b494d)
|
|
coding have passed, but I could not find a way to get the OpenLDAP libraries
to reliably time out on any of the queries we make, *and* get correct error
returns. No, async calls and ldap_result does NOT work, or I was simply too
stupid to correctly interpret the OpenLDAP manpage and source.
We can not allow to hang indefinitely in an ldap query, especially not for
winbindd. "ldap timeout" now specifies the overall timeout for the complete
operation, that's why I increased that to 15 seconds.
Volker
(This used to be commit 269f0750872e5f8757e0a9667e007a0410319fcd)
|
|
We may not have any interfaces up at all, so initialise the return variable.
Fixes Debian bug #252591
Andrew Bartlett
(This used to be commit 35aabae9d9bf66ef2c8eb4e07a850c606d8236d2)
|
|
Andrew Bartlett
(This used to be commit 5bd6abb54e12aee2031d48bc5b240bb4f127bf5a)
|
|
pointless. With a well-known session key, we may as well put the
password change directly on the wire, with it's own 'crypted with old
password' as the protection.
This should fix some 'long password change' issues, against Samba in
particular.
Andrew Bartlett
(This used to be commit 554a9132872187077a9c00abb18b9d809c59b7f1)
|
|
manually
(This used to be commit 11c6ca1c3c9d3b400f4cebcbf232899bcf4b613f)
|
|
(This used to be commit 430cf63b9148441bce42bfb15a8045de5da108f4)
|
|
requested actually is of type asked for. I've come across more than one
installation where a group sid had ended up as a uid in idmap and vice
versa. This just closes one possible for this misconfiguration, people
are actually using wbinfo.
Volker
(This used to be commit acfbd34025c2fde3d6a3e582c120c2b9de8ed39b)
|
|
(This used to be commit 62bd60e4458f6e9bdaab7b5c81b040a0b3310f30)
|
|
correct :-)
When sending a mailslot datagram, get the packet length correction correct.
Volker
(This used to be commit 530e7f09aea22f5782af0c6b333e15e01660b34a)
|
|
restarted if
need be. We should also make sure the main line know we no longer have a child.
(This used to be commit e3dc7934b50c8578d70fc01688a07bd369a7cf30)
|
|
entries from rpcclient.
Jeremy.
(This used to be commit bd64f0c08143545a8613688402f769a713227557)
|
|
of zero)
leave it locked out until an admin unlocks it (but log a message).
Jeremy.
(This used to be commit 14bd2a9ffc30d55d9737b4819797db8c38b46c66)
|
|
and account lockout flags. This is set when an account is updated
only from smbd or pdbedit. Bug found by "Dunn, Drew A." <Drew.Dunn@jhuapl.edu>.
Jeremy.
(This used to be commit bb3a0fa61f5fb74b8fe421260473c07847baeb2b)
|
|
(This used to be commit 128951cfe43e364970ec5760230a6450f54ae86d)
|
|
corruption problem, and smbd_log_tdb happily destoyed the evidence ....
Volker
(This used to be commit 359b9dcffeb66146c5405f8022d5d4e4a833aa51)
|
|
<michael@hum.aau.dk> - ensure
home directory service number is correctly reused.
Jeremy.
(This used to be commit 9d6347be8580d092cda0357b5d1a81fc6876ac1f)
|
|
in smbpasswd. Use -s if you want to script this.
Jeremy.
(This used to be commit a3589a18b6898e2b51570112c5acb2826ef6ba4a)
|
|
Jeremy.
(This used to be commit a6d0452a2d71201309a5abbe3ebc161ae75b17b8)
|
|
compiler errors on IRIX
(This used to be commit b47971174da9ef882e7941e53033e23c679db9a2)
|
|
On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork().
For other systems, we now only re-seed after a fork, and on startup.
No need to do it per-operation. This removes the 'need_reseed'
parameter from generate_random_buffer().
Andrew Bartlett
(This used to be commit 36741d3cf53a7bd17d361251f2bb50851cdb035f)
|
|
Andrew Bartlett
(This used to be commit 6d594d5bb119b6bc3f4c7699752666ac24d04745)
|